Missing access Token parameter with OAuth2Session, but plain ol' requests works.

[realimpat]

I'm building an api integration, and I can get it working using plain requests yet not with requests-oauthlib. The traceback goes to the oauthlib itself, but this is similar to unsolved issue 286 on this repo, so I'll post here for now.

The api I'm hitting isn't public, so I'll do my best to provide context even if you can't directly reproduce.

Here's what works with requests. This is at the callback stage, and the state is definitely the same state from the authorization url:

access_url = access_token_url + '?grant_type=authorization_code' + '&code=' + request.GET.get('code', '') + '&client_id=' + my_client_id + '&redirect_uri=' + redirect_uri + '&client_secret=' + client_secret + '&state=' + request.session['oauth_state']
token = requests.post(access_url)

Here's what fails with requests-oauthlib:

myobject = OAuth2Session(client_id = client_id, redirect_uri = redirect_uri, state = request.session['oauth_state'])
token = myobject.fetch_token(access_token_url, authorization_response=request.build_absolute_uri(), client_secret=client_secret

I'm fairly sure that the request.build_absolute_uri() is not the problem, because that part works for other API integrations; that most certainly returns the full url it needs to parse.

Anyways here's the error traceback:

File "/app/.heroku/python/lib/python3.6/site-packages/requests_oauthlib/oauth2_session.py" in fetch_token
  244.         self._client.parse_request_body_response(r.text, scope=self.scope)

File "/app/.heroku/python/lib/python3.6/site-packages/oauthlib/oauth2/rfc6749/clients/base.py" in parse_request_body_response
  411.         self.token = parse_token_response(body, scope=scope)

File "/app/.heroku/python/lib/python3.6/site-packages/oauthlib/oauth2/rfc6749/parameters.py" in parse_token_response
  379.     validate_token_parameters(params)

File "/app/.heroku/python/lib/python3.6/site-packages/oauthlib/oauth2/rfc6749/parameters.py" in validate_token_parameters
  389.         raise MissingTokenError(description="Missing access token parameter.")

So, somehow oauthlib raises an error because it can't find the access token parameter when it tries to validate whether parse_token_response() worked. So something seems to be going wrong at parse_token_response().

And this is what the token looks like when we do obtain the token:

{
"access_token": “<access_token>”,
"expires_in": 36000.0,
"refresh_token”: “<refresh_token>”
}

If someone can tell me how to inspect exactly what raw http requests are being sent by object.fetch_token(), that would also help me diagnose further. Is there a way to inspect the oauth2session object to find that, or does anyone happen to know an easy way to find that for a django app on heroku? (it's not in heroku logs)

Thanks for contributing to such an elegant package. The overall quality really makes me want to fix this rather than use the plain old requests code in my app.

[jorwoods]

@realimpat I had the exact same problem. Wasn't a public API, so I couldn't publish the details of how I was calling it, and couldn't reproduce it without having to build my own webapp.

I tried running it with pdb turned on, and the refresh token in my case was definitely present in the response from the web server, just not be stored within the auth object that was exposed to me at the end. I was never able to pin down exactly where in the flow the refresh token wasn't getting passed / saved.

[grissman]

@singingwolfboy I had this problem too with a private API. The fetch_token call was returning a 401 and not generating a token.

I spoke with my API provider, and it turns out they require everything be passed in the url querystring, but there doesn't seem to be an option for that in the fetch_token method. Is this accurate? If so, can you add an option to pass params into the fetch_token method?

When I changed your oauth2_session.py fetch_token from self.post(data=dict(urldecode(body), ...) to self.post(params=dict(urldecode(body), ...), it worked. I also made a pull request in case that's easiest for you.

Thanks for this fantastic package!

[datacubed]

Has this been fixed at all?
We use this package and it is excellent! But I'm having a similar issue to above.

client = LegacyApplicationClient(client_id=client_id)
oauth = OAuth2Session(client=client)
token = oauth.fetch_token(
token_url=token_url,
username=username,
password=password,
client_id=client_id,
client_secret=client_secret)

This gives me the error:

Traceback (most recent call last):
File "webgainstest.py", line 26, in
client_secret=client_secret)
File "/usr/local/lib/python2.7/dist-packages/requests_oauthlib/oauth2_session.py", line 244, in fetch_token
self._client.parse_request_body_response(r.text, scope=self.scope)
File "/usr/local/lib/python2.7/dist-packages/oauthlib/oauth2/rfc6749/clients/base.py", line 411, in parse_request_body_response
self.token = parse_token_response(body, scope=scope)
File "/usr/local/lib/python2.7/dist-packages/oauthlib/oauth2/rfc6749/parameters.py", line 379, in parse_token_response
validate_token_parameters(params)
File "/usr/local/lib/python2.7/dist-packages/oauthlib/oauth2/rfc6749/parameters.py", line 389, in validate_token_parameters
raise MissingTokenError(description="Missing access token parameter.")
oauthlib.oauth2.rfc6749.errors.MissingTokenError: (missing_token) Missing access token parameter.

[meyer1994]

@datacubed Same thing. But I get the invalid_grant error from the server. But using the old requests module works fine.

[realimpat]

My colleague grissman submitted a pull request that fixed this issue for us. I don't think it has been merged yet. Essentially what was happening (at least in our case) is that the API provider only accepted parameters through the url querystring. For some reason, OAuthlib only accepts parameters through headers. So we modified the OAuthlib source code to allow an option to toggle if you need to do things through the urls instead of via headers. The code works, so if you can view that PR you can implement it locally if you need in the meantime.

…

On Fri, Oct 5, 2018 at 3:37 PM João Meyer ***@***.***> wrote: @datacubed <https://github.com/datacubed> Same thing. But I get the invalid_grant error from the server. But using the old requests module works fine. — You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub <#324 (comment)>, or mute the thread <https://github.com/notifications/unsubscribe-auth/AhMFp82F79iACYrN4KvcXhJLWFhuAtGbks5uh8LwgaJpZM4V3eVv> .

[jlaird-espresso]

I had the same problem, but it went away when I put a trailing slash '/' on the token_url. That has nothing to do with the requests-oauthlib library -- it was a django rest server and the oauth2 token url routes needed that trailing slash. YMMV

[ashutosh-aneja]

oauthlib.oauth2.rfc6749.errors.MissingTokenError
oauthlib.oauth2.rfc6749.errors.MissingTokenError: (missing_token) Missing access token parameter.

Traceback (most recent call last)
File "/Python_2/env/lib/python3.5/site-packages/flask/app.py", line 2309, in call
return self.wsgi_app(environ, start_response)
File "//Python_2/env/lib/python3.5/site-packages/flask/app.py", line 2295, in wsgi_app
response = self.handle_exception(e)
File "/Python_2/env/lib/python3.5/site-packages/flask/app.py", line 1741, in handle_exception
reraise(exc_type, exc_value, tb)
File "/Python_2/env/lib/python3.5/site-packages/flask/_compat.py", line 35, in reraise
raise value
File "/Python_2/env/lib/python3.5/site-packages/flask/app.py", line 2292, in wsgi_app
response = self.full_dispatch_request()
File "/Python_2/env/lib/python3.5/site-packages/flask/app.py", line 1815, in full_dispatch_request
rv = self.handle_user_exception(e)
File "/Python_2/env/lib/python3.5/site-packages/flask/app.py", line 1718, in handle_user_exception
reraise(exc_type, exc_value, tb)
File "/Python_2/env/lib/python3.5/site-packages/flask/_compat.py", line 35, in reraise
raise value
File "/Python_2/env/lib/python3.5/site-packages/flask/app.py", line 1813, in full_dispatch_request
rv = self.dispatch_request()
File "/Python_2/env/lib/python3.5/site-packages/flask/app.py", line 1799, in dispatch_request
return self.view_functionsrule.endpoint
File "/Python_2/main.py", line 122, in callback
token = google.fetch_token(Auth.TOKEN_URI,client_secret=Auth.CLIENT_SECRET,authorization_response=request.url)
File "/Python_2/env/lib/python3.5/site-packages/requests_oauthlib/oauth2_session.py", line 244, in fetch_token
self._client.parse_request_body_response(r.text, scope=self.scope)
File "/Python_2/env/lib/python3.5/site-packages/oauthlib/oauth2/rfc6749/clients/base.py", line 409, in parse_request_body_response
self.token = parse_token_response(body, scope=scope)
File "/Python_2/env/lib/python3.5/site-packages/oauthlib/oauth2/rfc6749/parameters.py", line 376, in parse_token_response
validate_token_parameters(params)
File "/env/lib/python3.5/site-packages/oauthlib/oauth2/rfc6749/parameters.py", line 386, in validate_token_parameters
"""Ensures token precence, token type, expiration and scope in params."""
if 'error' in params:
raise_from_error(params.get('error'), params)

if not 'access_token' in params:
    raise MissingTokenError(description="Missing access token parameter.")

if not 'token_type' in params:
    if os.environ.get('OAUTHLIB_STRICT_TOKEN_TYPE'):
        raise MissingTokenTypeError()

oauthlib.oauth2.rfc6749.errors.MissingTokenError: (missing_token) Missing access token parameter.

how to solve this,plz anybody help me.

[karivatj]

Any updates to this? I'm having similar problems as OP when trying to access Withings API. Weird enough, Google API seems to be working as expected tho.

Traceback (most recent call last): File "nokia_api.py", line 11, in <module> creds = auth.get_credentials(authorization_response) File "C:\Python36\lib\site-packages\nokia\__init__.py", line 86, in get_credentials client_secret=self.consumer_secret) File "C:\Python36\lib\site-packages\requests_oauthlib\oauth2_session.py", line 244, in fetch_token self._client.parse_request_body_response(r.text, scope=self.scope) File "C:\Python36\lib\site-packages\oauthlib\oauth2\rfc6749\clients\base.py", line 415, in parse_request_body_response self.token = parse_token_response(body, scope=scope) File "C:\Python36\lib\site-packages\oauthlib\oauth2\rfc6749\parameters.py", line 425, in parse_token_response validate_token_parameters(params) File "C:\Python36\lib\site-packages\oauthlib\oauth2\rfc6749\parameters.py", line 435, in validate_token_parameters raise MissingTokenError(description="Missing access token parameter.") oauthlib.oauth2.rfc6749.errors.MissingTokenError: (missing_token) Missing access token parameter.

[psilo909]

same for me with withings api :-/

[gnomic]

Getting the same err: MissingTokenError: (missing_token) Missing access token parameter.

[psilo909]

I downgraded the requests-oauthlib library and now my requests with python-nokia are fine again..

[adamhooper]

I got this same experience with Intercom OAuth; I added include_client_id=True to my session.fetch_token() params and now it works.